A vulnerability scanner for container images and filesystems
GUAC aggregates software security metadata into a high fidelity graph database.
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
Houdini recipe files repository.
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
An easy to use and feature-rich PROS template for the Vex V5
An LDraw™ editor for LEGO® style digital building instructions.
Creates CycloneDX Software Bill of Materials (SBOM) from Go modules
A tool to create, transform and attest VEX metadata
houdini hda tools focused on procedural modeling environments
Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects
A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling, books, articles and a plethora of learning resources from the web.
Add a description, image, and links to the vex topic page so that developers can more easily learn about it.
To associate your repository with the vex topic, visit your repo's landing page and select "manage topics."